redline | cb948763ae6a3a61e0965436f12ad4770636f2308874298b84630a19b76f6132[.]zip

General

Target

cb948763ae6a3a61e0965436f12ad4770636f2308874298b84630a19b76f6132.zip
Size

51KB
MD5

3a1a6e71189e27489a6dc85f84fb3f52
SHA1

e125a6a50f3a557daf61b15e8285fc5bd260bcef
SHA256

d3df779364b44ab9e982f9b14e4f120f2747957a205720050ea472307142823e
SHA512

72dd80295c80e564e02c793db22964dc8d8866f379961a13ab119e85e14bfeb18c3fa190d69f92534940679b4ab330befd726b2f10082ceb60d1aa75dab5bd97
SSDEEP

768:NtG/l++VpIvJGxNH+Uh4/GJWmgUNx7he1s8CN6xorL20A6pf1EdtWTdjDN9:NM/o+yUU/ez7sNxCyLkeAxDN9

Score

10^/10

dent redline

Family

redline

Botnet

dent

C2

193.233.20.33:4125

Attributes

cb948763ae6a3a61e0965436f12ad4770636f2308874298b84630a19b76f6132.zip
.zip

Password: infected
cb948763ae6a3a61e0965436f12ad4770636f2308874298b84630a19b76f6132
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ